Please share a web app sample for asp. Net core mvc. Because I tried your directions but I never get the group the user is part of using graph not even your approach... Thanks
Thanks a lot for the explanation! So if we have an Azure Active Directory with user's groups, how could we add them to get those groups into these custom claims and manage them from our B2C tenant?
If you're using AAD, it's best not to use B2C as well. AAD has most of the B2C features integrated into its B2X platform now. There are some docs online about using groups for both though. Using the approach in this video you could poll the Graph API for the user's groups in your Function app, and add those to the token the same way as in the video. Or as I said there are other methods you can find docs online for.
@@goforgoldman , can we use social media login using AAD? I'm more interested in using Microsoft, LinkedIn and Google Login. These features are available in B2C atm.
Glorious! Would absolutely LOVE a code sample for this. - For the github examples - which one in particular were you using - For developer blogs talking about this - got any specifics?
This is my GitHub repo with this sample: github.com/matt-goldman/access-granted, no specific blogs come to mind but a quick search will give you hundreds :)
Thank you Matt. I have one question. If function has not started or REST API is throwing error. Is there a way to continue the policy workflow execution with say some default value instead of failing the entire workflow?
Hi there. Your explanation really gives some idea about b2c to migrate. If possible, can you create a video to handle the user Signin, Signup, Edit profile, Reset Password flows via custom policies? Would really helps.
Hi Zaki, yes absolutely! In fact I've spent the last few weeks on a client project doing exactly this. There are some sample policies on GitHub that show you how to do this, start with those.
@@goforgoldman great thanks for reply.. so from my app do i call the custom policy sign in or the user flow? and how would custom layout work if I call custom policy?
@@afgone123456 If you're using a custom policy, that's what you would call. You can set a custom layout using the ContentDefinitions in your Extensions file. SSW can help with this, feel free to ping us for a free initial meeting if this is of interest.
Yep sure does, you have to change a couple of things though. Either use the full namespaced schema for the role in the az func (or wherever you're seeding the roles from), or specify the role claim type in your ASP.NET Core project.
You guys just got a new follower. Thanks! Very very helpfull
perfect timing for my pet project, thanks for this
Just what I was looking for! Thanks for providing this.
Please share a web app sample for asp. Net core mvc. Because I tried your directions but I never get the group the user is part of using graph not even your approach... Thanks
Thanks a lot for the explanation!
So if we have an Azure Active Directory with user's groups, how could we add them to get those groups into these custom claims and manage them from our B2C tenant?
If you're using AAD, it's best not to use B2C as well. AAD has most of the B2C features integrated into its B2X platform now. There are some docs online about using groups for both though. Using the approach in this video you could poll the Graph API for the user's groups in your Function app, and add those to the token the same way as in the video. Or as I said there are other methods you can find docs online for.
@@goforgoldman , can we use social media login using AAD? I'm more interested in using Microsoft, LinkedIn and Google Login. These features are available in B2C atm.
@@Anonymous-tk6pm Available in AAD now too (without B2C) via the B2X feature. It's very cool :)
Glorious! Would absolutely LOVE a code sample for this.
- For the github examples - which one in particular were you using
- For developer blogs talking about this - got any specifics?
This is my GitHub repo with this sample: github.com/matt-goldman/access-granted, no specific blogs come to mind but a quick search will give you hundreds :)
@@goforgoldman Thank you thank you thank you!=) Good timing too - you let me bang my head against it for 5 days - that's pretty much what I needed=)
Thank you Matt. I have one question. If function has not started or REST API is throwing error. Is there a way to continue the policy workflow execution with say some default value instead of failing the entire workflow?
Hi there. Your explanation really gives some idea about b2c to migrate. If possible, can you create a video to handle the user Signin, Signup, Edit profile, Reset Password flows via custom policies? Would really helps.
Hi D G, thanks for the feedback. We will add your suggestion to our backlog! :)
Cheers,
-SSW TV team
Any asp. Net core sample please? The xml if I add those roles trows error.
Do you guys have this content in a blog post version?
Great video! Microsoft's docs makes things so hard 😒😒
Nice work Matt ❤
can you share the sample code which are using?
github.com/matt-goldman/access-granted
Is there a way to add custom policy for OpenId Connect?
Hi Zaki, yes absolutely! In fact I've spent the last few weeks on a client project doing exactly this. There are some sample policies on GitHub that show you how to do this, start with those.
@@goforgoldman great thanks for reply.. so from my app do i call the custom policy sign in or the user flow? and how would custom layout work if I call custom policy?
@@afgone123456 If you're using a custom policy, that's what you would call. You can set a custom layout using the ContentDefinitions in your Extensions file. SSW can help with this, feel free to ping us for a free initial meeting if this is of interest.
Great demo - thanks!
Very cool, thanks for sharing. Any chance of source code access?
github.com/matt-goldman/access-granted
Does this work with AuthorizeAttribute Roles?
Yep sure does, you have to change a couple of things though. Either use the full namespaced schema for the role in the az func (or wherever you're seeding the roles from), or specify the role claim type in your ASP.NET Core project.
Can we configure PIM for Global admin in b2c tenant?
does it have MFA with TOTP?
Yes, this is provided by B2C
I dont even have the menu entry for user flows in my b2c tenant
1:06 - free codes to scan 😁